CVE-2024-13003 – “1000 Projects Portfolio Management System MCA SQL Injection Vulnerability”

12月 29, 2024
5:16 am

CVE ID : CVE-2024-13003

Published : Dec. 29, 2024, 4:15 a.m. | 1 hour, 1 minute ago

Description : A vulnerability was found in 1000 Projects Portfolio Management System MCA 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /update_ed.php. The manipulation of the argument e_id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13003 – “1000 Projects Portfolio Management System MCA SQL Injection Vulnerability”

Elvescore.io

Recent Posts

CVE-2024-13058 – SoftIron HyperCloud Elevated User Privilege sdStorage Subsystem Vuln

CVE-2024-11944 – iXsystems TrueNAS CORE Tarfile Directory Traversal Remote Code Execution Vulnerability

CVE-2024-11946 – iXsystems TrueNAS CORE fetch_plugin_packagesites Tar Transmission Vulnerability

CVE-2024-12751 – Foxit PDF Reader AcroForm Buffer Overflow Remote Code Execution

CVE-2024-12752 – Foxit PDF Reader AcroForm Remote Code Execution Vulnerability

CVE-2024-12753 – Foxit PDF Reader Link Following Local Privilege Escalation Vulnerability

CVE-2024-13003 – “1000 Projects Portfolio Management System MCA SQL Injection Vulnerability”

CVE-2024-13003 – “1000 Projects Portfolio Management System MCA SQL Injection Vulnerability”